Specifications
Incident Test Tool
This tool lets you test and debug the search scopes and actions to verify ASM's response to an event.
Click areas in the window for more information.
Two levels of testing can be performed:
Test response by sending an SNMP trap to ASM − this level uses Console's SNMPTrap Service to
receive the trap and notify ASM of the threat. This is the more comprehensive test because it
simulates exactly the workings of an actual trap. This test requires that the SNMP message be
correctly specified (including authentication credentials) and that Console's SNMPTrap Service is
running.
NOTES: Your client system must have SNMP access to the server to use the Test
response by sending an SNMP trap to ASM level of testing.
1.
The NetSight SNMPTrap Service (snmptrapd) must be configured with
Security User credentials and/or Engine IDs for devices from which Console's
SNMPTrap Service (snmptrapd) will accept SNMPv3 Notification messages.
Without this information, notification messages are dropped by SNMPTrap
Service. The traps do not appear in the Events view and ASM will not receive
notification. Refer to How to Configure the SNMPTrap Service to learn more
about configuring SNMPTrap Service.
2.
•
Incident Test Tool 194